Does Partition.bin also need to be signed when using SecureBoot V2

gb.123
Posts: 32
Joined: Thu May 20, 2021 9:56 pm

Does Partition.bin also need to be signed when using SecureBoot V2

Postby gb.123 » Thu Feb 17, 2022 12:32 pm

Hi !

I was wondering if Partition.bin(or Partition-table.bin) also needs to be signed when using SecureBoot V2. Signing is done seperately using espsecure.py sign_data command.

Does Partition.bin(or Partition-table.bin) need to be signed or is ot supposed to be burnt unsigned ?

Thanks for the help!

ESP_Mahavir
Posts: 188
Joined: Wed Jan 24, 2018 6:51 am

Re: Does Partition.bin also need to be signed when using SecureBoot V2

Postby ESP_Mahavir » Thu Feb 17, 2022 3:46 pm

Bootloader does not check signature for partition table in either of secure boot v1 or v2 scheme. However for secure boot v1 scheme, build system does add signature to partition table binary for backward compatibility purpose. For secure boot v2, partition table binary is kept as is, ref: https://github.com/espressif/esp-idf/bl ... t#L98-L102

So you may flash partition table binary without appending signature.

gb.123
Posts: 32
Joined: Thu May 20, 2021 9:56 pm

Re: Does Partition.bin also need to be signed when using SecureBoot V2

Postby gb.123 » Thu Feb 17, 2022 5:04 pm

Thanks so much !

EmilenL
Posts: 15
Joined: Sun Oct 17, 2021 5:54 pm

Re: Does Partition.bin also need to be signed when using SecureBoot V2

Postby EmilenL » Thu Mar 16, 2023 2:35 pm

What is the rationale behind not signing the partition table? Seems like a good idea to sign it and verify it at boot, to avoid any kind of
unauthorized modification.

ESP_Mahavir
Posts: 188
Joined: Wed Jan 24, 2018 6:51 am

Re: Does Partition.bin also need to be signed when using SecureBoot V2

Postby ESP_Mahavir » Mon Mar 20, 2023 6:58 am

What is the rationale behind not signing the partition table?
Primary reason was to speed up the bootup time with secure boot enabled case. Additionally, alteration to partition table with flash encryption enabled case is difficult, because the contents (along with integrity check) are encrypted on the flash. Here is a prior discussion on this topic: https://github.com/espressif/esp-idf/issues/1641

Who is online

Users browsing this forum: HighVoltage and 142 guests